Chapters

36 Chapters | 3:44:20 |

01

Setup & Ways to Extend API Platform

4:39
02

State Providers, Processors & a Custom Field

4:49
03

Decorating the Core State Provider

4:47
04

Decorating the CollectionProvider

7:12
05

Simpler State Processor

5:47
06

Running Code "On Publish"

6:05
07

Totally Custom Resource

4:19
08

Custom Resource State Provider

5:04
09

Using a Custom (Date) Identifier

7:35
10

Custom Resource Item Provider

3:26
11

Custom Resource State Processor

6:48
12

Relating Custom ApiResources

5:13
13

Embedding Custom DTO's

4:47
14

Pagination on a Custom Resource

8:18
15

User Class Dto

4:24
16

stateOptions + entityClass Magic

10:07
17

Entities, DTO's & The "Central" Object

6:24
18

Provider: Transforming Entities to DTOs

4:47
19

Entity -> DTO Item State Provider

4:11
20

DTO -> Entity State Processor

7:39
21

Leveraging the Core Processor

7:11
22

Controlling Fields without Groups

4:31
23

Other Conditional Field Strategies

6:04
24

DTO Validation & Security

6:13
25

MicroMapper: Central DTO Mapping

10:11
26

Reusable Entity->Dto Provider & Processor

4:11
27

Quick! Create a DragonTreasure DTO

9:51
28

Dtos, Mapping & Max Depth of Relations

8:05
29

Making DragonTreasureApi Writable

7:23
30

DTO & Security

9:39
31

Field Security with Patch

6:17
32

Triggering a "Publish"

4:14
33

Writable Relation Fields

5:09
34

Writing to a Collection Relation

5:08
35

Writable Collection via the PropertyAccessor

6:29
36

Simpler Validator for Checking State Change

7:23

> APIs > API Platform 3 Part 3: Custom Resources

Buy Access to Course

03.

Decorating the Core State Provider

Autoplay

Previous Chapter

Next Chapter

To populate the non-persisted property on our entity, we'll leverage a custom state provider. Create one with:

php bin/console make:state-provider

Let's dub it DragonTreasureStateProvider.

Spin over and open this up in src/State/. Ok, it implements a ProviderInterface which requires one method: provide(). Our job is to return the DragonTreasure object for the current API request - which is a Patch request in our test.

            Copy Code

                            Show All Lines

                        15 lines
            |
            src/State/DragonTreasureStateProvider.php
        
                Show Lines

                                                    // ... lines 1 - 7
                            
            class DragonTreasureStateProvider implements ProviderInterface
        
            {
        
                public function provide(Operation $operation, array $uriVariables = [], array $context = []): object|array|null
        
                {
        
                    // Retrieve the state from somewhere
        
                }
        
            }

Before we think about doing that, dd($operation) so we can see if this is executed. When we try the test... the answer is that it is not called. We get the same error as before.

            Copy Code

                            Show All Lines

                        15 lines
            |
            src/State/DragonTreasureStateProvider.php
        
                Show Lines

                                                    // ... lines 1 - 9
                            
                public function provide(Operation $operation, array $uriVariables = [], array $context = []): object|array|null
        
                {
        
                    dd($operation);
        
                }
        
                Show Lines

                                                    // ... lines 14 - 15

So, creating a state provider and implementing ProviderInterface is not enough to make our class be used. And this is great! We get to control this on an resource-by-resource basis... or even on an operation-by-operation basis.

In DragonTreasure, way up on top, inside the ApiResource attribute, add provider then the service ID, which is the class in our case: DragonTreasureStateProvider::class.

            Copy Code

                            Show All Lines

                        275 lines
            |
            src/Entity/DragonTreasure.php
        
                Show Lines

                                                    // ... lines 1 - 19
                            
            use App\State\DragonTreasureStateProvider;
        
                Show Lines

                                                    // ... lines 21 - 30
                            
            #[ApiResource(
        
                Show Lines

                                                    // ... lines 32 - 64
                            
                provider: DragonTreasureStateProvider::class,
        
                Show Lines

                                                    // ... lines 66 - 68
                            
            )]
        
                Show Lines

                                                    // ... lines 70 - 90
                            
            class DragonTreasure
        
                Show Lines

                                                    // ... lines 92 - 275

So now, whenever API Platform needs to "load" a dragon treasure, it will call our provider. And our test is a perfect example. When we make a PATCH request, the first thing API Platform will do is ask the state provider to load this treasure. Then it will update it using the JSON.

Watch, when we run the test now:

symfony php bin/phpunit --filter=testOwnerCanSeeIsPublishedAndIsMineFields

We hit the dump!

Decorating the Provider

But... I don't want to do all the work of querying the database for the dragon treasures... because there's already a core entity provider that does all that! So let's use it!

Add a constructor... oh and I'll keep that dd() for now. Add a private ProviderInterface $itemProvider argument.

            Copy Code

                            Show All Lines

                        19 lines
            |
            src/State/DragonTreasureStateProvider.php
        
                Show Lines

                                                    // ... lines 1 - 5
                            
            use ApiPlatform\State\ProviderInterface;
        
                Show Lines

                                                    // ... line 7
                            
            class DragonTreasureStateProvider implements ProviderInterface
        
            {
        
                public function __construct(private ProviderInterface $itemProvider)
        
                {
        
                }
        
                Show Lines

                                                    // ... lines 13 - 17
                            
            }

As a reminder: the Get one, Patch, Put and Delete operations all use the ItemProvider, which knows to query for a single item. Since our test uses Patch, we're going to focus on using that provider first.

If we run the test now, it fails. The error is:

Cannot autowire service DragonTreasureStateProvider: argument itemProvider references ProviderInterface, but no such service exists.

Often in Symfony, if we type-hint an interface, Symfony will pass us what we need. But in the case of ProviderInterface, there are multiple services that implement this - including the core ItemProvider and CollectionProvider.

This means that we need to tell Symfony which we want. Do that with the handy-dandy #[Autowire] attribute with service set to ItemProvider::class - make sure to get the one from ORM.

            Copy Code

                            Show All Lines

                        23 lines
            |
            src/State/DragonTreasureStateProvider.php
        
                Show Lines

                                                    // ... lines 1 - 7
                            
            use Symfony\Component\DependencyInjection\Attribute\Autowire;
        
                Show Lines

                                                    // ... line 9
                            
            class DragonTreasureStateProvider implements ProviderInterface
        
            {
        
                public function __construct(
        
                    #[Autowire(service: ItemProvider::class)] private ProviderInterface $itemProvider
        
                )
        
                {
        
                }
        
                Show Lines

                                                    // ... lines 17 - 21
                            
            }

And yup! That is a valid service id. There is also a harder-to-remember service id, but API Platform provides a service alias so that we can just use this. Lovely!

Ok, go test go! Yes! We hit the dump which means that the item provider was injected. So now, we're dangerous. $treasure equals $this->itemProvider->provide() passing the 3 args.

            Copy Code

                            Show All Lines

                        32 lines
            |
            src/State/DragonTreasureStateProvider.php
        
                Show Lines

                                                    // ... lines 1 - 18
                            
                public function provide(Operation $operation, array $uriVariables = [], array $context = []): object|array|null
        
                {
        
                    $treasure = $this->itemProvider->provide($operation, $uriVariables, $context);
        
                Show Lines

                                                    // ... lines 22 - 29
                            
                }
        
                Show Lines

                                                    // ... lines 31 - 32

At this point, $treasure will be null or a valuable DragonTreasure object. If it is not a DragonTreasure instance, return null.

But if we do have a treasure, we're in business! Call setIsOwnedByAuthenticatedUser() and hardcode true for now. Then return $treasure.

            Copy Code

                            Show All Lines

                        32 lines
            |
            src/State/DragonTreasureStateProvider.php
        
                Show Lines

                                                    // ... lines 1 - 18
                            
                public function provide(Operation $operation, array $uriVariables = [], array $context = []): object|array|null
        
                {
        
                Show Lines

                                                    // ... lines 21 - 22
                            
                    if (!$treasure instanceof DragonTreasure) {
        
                        return $treasure;
        
                    }
        
                    $treasure->setIsOwnedByAuthenticatedUser(true);
        
                    return $treasure;
        
                }
        
                Show Lines

                                                    // ... lines 31 - 32

Ok, go test go!

symfony php bin/phpunit --filter=testOwnerCanSeeIsPublishedAndIsMineFields

Shazam! We're green! So let's go set that value for real. This is easy enough: add a private Security argument... and make sure you first arg has a comma.

Then this is true if $this->security->getUser() equals $treasure->getOwner().

            Copy Code

                            Show All Lines

                        34 lines
            |
            src/State/DragonTreasureStateProvider.php
        
                Show Lines

                                                    // ... lines 1 - 11
                            
            class DragonTreasureStateProvider implements ProviderInterface
        
            {
        
                public function __construct(
        
                Show Lines

                                                    // ... line 15
                            
                    private Security $security,
        
                )
        
                {
        
                }
        
                public function provide(Operation $operation, array $uriVariables = [], array $context = []): object|array|null
        
                {
        
                Show Lines

                                                    // ... lines 23 - 28
                            
                    $treasure->setIsOwnedByAuthenticatedUser($this->security->getUser() === $treasure->getOwner());
        
                    return $treasure;
        
                }
        
            }

And... then... the test still passes. Custom field accomplished! And, most importantly, it is documented inside our API.

However, we did just break our GetCollection endpoint. Let's fix that next.

Symfony 6.3 API Platform 3

What PHP libraries does this tutorial use?

// composer.json
{
    "require": {
        "php": ">=8.1",
        "ext-ctype": "*",
        "ext-iconv": "*",
        "api-platform/core": "3.1.x-dev", // 3.1.x-dev
        "doctrine/annotations": "^2.0", // 2.0.1
        "doctrine/doctrine-bundle": "^2.8", // 2.10.2
        "doctrine/doctrine-migrations-bundle": "^3.2", // 3.2.4
        "doctrine/orm": "^2.14", // 2.16.1
        "nelmio/cors-bundle": "^2.2", // 2.3.1
        "nesbot/carbon": "^2.64", // 2.69.0
        "phpdocumentor/reflection-docblock": "^5.3", // 5.3.0
        "phpstan/phpdoc-parser": "^1.15", // 1.23.1
        "symfony/asset": "6.3.*", // v6.3.0
        "symfony/console": "6.3.*", // v6.3.2
        "symfony/dotenv": "6.3.*", // v6.3.0
        "symfony/expression-language": "6.3.*", // v6.3.0
        "symfony/flex": "^2", // v2.3.3
        "symfony/framework-bundle": "6.3.*", // v6.3.2
        "symfony/property-access": "6.3.*", // v6.3.2
        "symfony/property-info": "6.3.*", // v6.3.0
        "symfony/runtime": "6.3.*", // v6.3.2
        "symfony/security-bundle": "6.3.*", // v6.3.3
        "symfony/serializer": "6.3.*", // v6.3.3
        "symfony/stimulus-bundle": "^2.9", // v2.10.0
        "symfony/string": "6.3.*", // v6.3.2
        "symfony/twig-bundle": "6.3.*", // v6.3.0
        "symfony/ux-react": "^2.6", // v2.10.0
        "symfony/ux-vue": "^2.7", // v2.10.0
        "symfony/validator": "6.3.*", // v6.3.2
        "symfony/webpack-encore-bundle": "^2.0", // v2.0.1
        "symfony/yaml": "6.3.*", // v6.3.3
        "symfonycasts/micro-mapper": "^0.1.0" // v0.1.1
    },
    "require-dev": {
        "doctrine/doctrine-fixtures-bundle": "^3.4", // 3.4.4
        "mtdowling/jmespath.php": "^2.6", // 2.6.1
        "phpunit/phpunit": "^9.5", // 9.6.11
        "symfony/browser-kit": "6.3.*", // v6.3.2
        "symfony/css-selector": "6.3.*", // v6.3.2
        "symfony/debug-bundle": "6.3.*", // v6.3.2
        "symfony/maker-bundle": "^1.48", // v1.50.0
        "symfony/monolog-bundle": "^3.0", // v3.8.0
        "symfony/phpunit-bridge": "^6.2", // v6.3.2
        "symfony/stopwatch": "6.3.*", // v6.3.0
        "symfony/web-profiler-bundle": "6.3.*", // v6.3.2
        "zenstruck/browser": "^1.2", // v1.4.0
        "zenstruck/foundry": "^1.26" // v1.35.0
    }
}

Previous Chapter

Next Chapter

Decorating the Core State Provider

Share this awesome video!

Decorating the Provider

Comments

Delete comment?

What PHP libraries does this tutorial use?

Show Lines	// ... lines 1 - 7
	class DragonTreasureStateProvider implements ProviderInterface
	{
	public function provide(Operation $operation, array $uriVariables = [], array $context = []): object\|array\|null
	{
	// Retrieve the state from somewhere
	}
	}

Show Lines	// ... lines 1 - 9
	public function provide(Operation $operation, array $uriVariables = [], array $context = []): object\|array\|null
	{
	dd($operation);
	}
Show Lines	// ... lines 14 - 15

Show Lines	// ... lines 1 - 19
	use App\State\DragonTreasureStateProvider;
Show Lines	// ... lines 21 - 30
	#[ApiResource(
Show Lines	// ... lines 32 - 64
	provider: DragonTreasureStateProvider::class,
Show Lines	// ... lines 66 - 68
	)]
Show Lines	// ... lines 70 - 90
	class DragonTreasure
Show Lines	// ... lines 92 - 275

Show Lines	// ... lines 1 - 5
	use ApiPlatform\State\ProviderInterface;
Show Lines	// ... line 7
	class DragonTreasureStateProvider implements ProviderInterface
	{
	public function __construct(private ProviderInterface $itemProvider)
	{
	}
Show Lines	// ... lines 13 - 17
	}

Show Lines	// ... lines 1 - 7
	use Symfony\Component\DependencyInjection\Attribute\Autowire;
Show Lines	// ... line 9
	class DragonTreasureStateProvider implements ProviderInterface
	{
	public function __construct(
	#[Autowire(service: ItemProvider::class)] private ProviderInterface $itemProvider
	)
	{
	}
Show Lines	// ... lines 17 - 21
	}

Show Lines	// ... lines 1 - 18
	public function provide(Operation $operation, array $uriVariables = [], array $context = []): object\|array\|null
	{
	$treasure = $this->itemProvider->provide($operation, $uriVariables, $context);
Show Lines	// ... lines 22 - 29
	}
Show Lines	// ... lines 31 - 32

Show Lines	// ... lines 1 - 11
	class DragonTreasureStateProvider implements ProviderInterface
	{
	public function __construct(
Show Lines	// ... line 15
	private Security $security,
	)
	{
	}

	public function provide(Operation $operation, array $uriVariables = [], array $context = []): object\|array\|null
	{
Show Lines	// ... lines 23 - 28
	$treasure->setIsOwnedByAuthenticatedUser($this->security->getUser() === $treasure->getOwner());

	return $treasure;
	}
	}